Log key import, generation, deletion for NIAP Bug: 183201685 Test: atest MixedDeviceOwnerTest#testSecurityLoggingWithSingleUser Change-Id: Ie4271a769c8a8c3241079cd15efed4e3b9e9468b

commit: 94243c2f8f8bb7e9a539c7095f1e2a78a935e330 [log] [tgz]
author: Pavel Grafov <pgrafov@google.com> Wed Apr 21 18:03:11 2021 +0100
committer: Pavel Grafov <pgrafov@google.com> Tue Apr 27 17:52:21 2021 +0100
tree: 7319bd336bbd9151950613722280300d41864b98
parent: 64a6de9dd6a30ccda8db02a1d8758aab48b11fc2 [diff] [blame]
diff --git a/keystore2/src/service.rs b/keystore2/src/service.rs
index 8d3b66e..b8ea244 100644
--- a/keystore2/src/service.rs
+++ b/keystore2/src/service.rs

@@ -17,6 +17,7 @@
 
 use std::collections::HashMap;
 
+use crate::audit_log::log_key_deleted;
 use crate::permission::{KeyPerm, KeystorePerm};
 use crate::security_level::KeystoreSecurityLevel;
 use crate::utils::{
@@ -374,7 +375,9 @@
         map_or_log_err(self.list_entries(domain, namespace), Ok)
     }
     fn deleteKey(&self, key: &KeyDescriptor) -> binder::public_api::Result<()> {
-        map_or_log_err(self.delete_key(key), Ok)
+        let result = self.delete_key(key);
+        log_key_deleted(key, ThreadState::get_calling_uid(), result.is_ok());
+        map_or_log_err(result, Ok)
     }
     fn grant(
         &self,
commit	94243c2f8f8bb7e9a539c7095f1e2a78a935e330	[log] [tgz]
author	Pavel Grafov <pgrafov@google.com>	Wed Apr 21 18:03:11 2021 +0100
committer	Pavel Grafov <pgrafov@google.com>	Tue Apr 27 17:52:21 2021 +0100
tree	7319bd336bbd9151950613722280300d41864b98
parent	64a6de9dd6a30ccda8db02a1d8758aab48b11fc2 [diff] [blame]